Branch sisyphus update bulletin.

Package alterator-auth updated to version 0.30.0-alt1 for branch sisyphus in task 175353.

При вводе в домен не изменяется файл /etc/krb5.conf

В Starterkit Gnome3 ошибка при вводе в домен

Package libupnp updated to version 1.6.21-alt1 for branch sisyphus in task 175476.

Published: 2017-03-07
Modified: 2024-11-21

CVE-2016-6255

Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in the webroot via a POST request without a registered handler.

Severity: HIGH (7.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

References:

Published: 2017-03-07
Modified: 2024-11-21

CVE-2016-8863

Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in the CALLBACK header of an SUBSCRIBE request.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Package propagator updated to version 20161226-alt1 for branch sisyphus in task 175486.

Падает (general protection), если дисков больше 50 шт.

Version: 2.1.0

Branch sisyphus update on 2016-12-27

ALT-BU-2016-3232-1

ALT-PU-2016-2492-1

Closed bugs

Bug #32342

Bug #32937

ALT-PU-2016-2493-1

Closed vulnerabilities

CVE-2016-6255

CVE-2016-8863

ALT-PU-2016-2495-1

Closed bugs

Bug #32934